Description
In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.
Remediation
References
Related Vulnerabilities
WordPress Plugin Sooqr Search Restricted File Upload (1.1.4)
Oracle HTTP Server NULL Pointer Dereference Vulnerability (CVE-2019-10097)
Microsoft SQL Server Other Vulnerability (CVE-2001-0344)
Piwigo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3790)
TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3806)